Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/hufn-LQR8fyXengb2M_-IYpfcB4.roa
File: hufn-LQR8fyXengb2M_-IYpfcB4.roa (raw, json)
Hash identifier: y9D01a2k1bH7DuDxL0DN16MOdyL4BuHA8T4RDIl+jEY=
Subject key identifier: 86:E7:E7:F8:B4:11:F1:FC:97:7A:78:1B:D8:CF:FE:21:8A:5F:70:1E
Certificate issuer: /CN=ad9afade4183ae80048d6b84818eec46f680fa26
Certificate serial: 04915CA8
Authority key identifier: AD:9A:FA:DE:41:83:AE:80:04:8D:6B:84:81:8E:EC:46:F6:80:FA:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZr63kGDroAEjWuEgY7sRvaA-iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/hufn-LQR8fyXengb2M_-IYpfcB4.roa
Signing time: Sat 01 Jan 2022 10:57:06 +0000
ROA not before: Sat 01 Jan 2022 10:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31463
IP address blocks: 185.167.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76635304 (0x4915ca8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9afade4183ae80048d6b84818eec46f680fa26
Validity
Not Before: Jan 1 10:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86e7e7f8b411f1fc977a781bd8cffe218a5f701e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0b:0e:4f:0e:7e:fa:32:18:f7:72:4c:ac:2e:
72:c2:1b:d5:75:56:e8:47:43:5e:bb:80:d9:bb:99:
ac:11:1c:35:36:0b:de:e1:1a:8a:90:36:0f:8a:02:
94:39:9d:36:91:47:e3:78:96:c8:85:b4:ea:24:b4:
b8:08:30:06:8a:57:c4:66:60:1a:42:52:a7:92:97:
5b:5d:41:a2:4c:ee:37:ee:aa:4f:38:df:1e:12:f0:
47:38:10:19:48:da:c6:cd:cf:07:78:55:df:93:cb:
b6:98:bf:9e:c6:59:11:14:c7:e4:07:1c:80:32:8e:
92:09:ba:ba:78:45:7b:62:83:23:14:70:f2:df:22:
55:c0:b4:8c:59:69:4e:bd:3a:d9:72:6f:65:72:27:
0f:dc:87:c8:e5:77:e9:e7:bd:b2:66:c8:ab:57:73:
37:8a:f5:a0:20:fc:8a:5f:90:b2:f9:72:90:6e:c7:
a1:1a:4a:f5:8e:48:f1:f3:a3:b5:5d:85:7c:8c:79:
a4:66:bd:0d:d1:cb:42:c4:31:7d:a2:0c:70:08:fe:
46:1c:bb:0b:a7:b1:4d:92:8e:db:f7:7e:6b:68:b4:
54:11:c1:c8:4f:87:c8:74:2d:b8:53:3f:40:ae:b7:
81:2d:6b:d1:60:ac:73:f6:12:b7:75:69:5c:88:94:
d9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E7:E7:F8:B4:11:F1:FC:97:7A:78:1B:D8:CF:FE:21:8A:5F:70:1E
X509v3 Authority Key Identifier:
keyid:AD:9A:FA:DE:41:83:AE:80:04:8D:6B:84:81:8E:EC:46:F6:80:FA:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZr63kGDroAEjWuEgY7sRvaA-iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/hufn-LQR8fyXengb2M_-IYpfcB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/rZr63kGDroAEjWuEgY7sRvaA-iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.216.0/24
Signature Algorithm: sha256WithRSAEncryption
48:47:5b:42:46:89:1c:c3:90:cc:84:ac:1b:0a:12:86:10:33:
2f:c0:fb:81:98:69:0e:e7:1e:b7:e1:99:21:ef:83:1d:b0:1d:
6b:b5:4e:1c:02:07:ff:66:c9:a6:84:4a:ce:52:7d:c5:f2:25:
da:c4:ec:15:19:0f:d9:89:5e:fc:f3:99:32:fe:7b:ea:ab:fe:
62:56:1d:f0:22:9b:bd:ca:3d:a4:6e:9c:15:06:ca:12:83:a0:
01:a5:80:45:0d:8e:c3:02:54:ce:6d:51:e2:e6:60:cb:49:88:
a1:f5:d5:22:6c:43:49:3a:01:eb:8a:6a:1f:bc:7f:63:ac:7a:
c7:43:87:a0:51:fa:8e:8a:81:8c:66:21:da:61:57:59:0f:a2:
c3:0a:41:fe:22:f2:46:64:3e:60:00:ef:20:37:c7:01:2e:54:
79:3b:d2:65:f5:9c:3b:60:ae:41:78:a1:1b:89:22:b6:1c:85:
38:7b:47:f2:95:1e:ac:11:f0:7d:1b:c3:c4:53:73:08:db:07:
09:84:23:59:81:f6:db:57:38:67:a3:73:33:64:c6:91:da:4d:
1d:1f:9f:8b:4c:18:4e:b1:09:7e:7c:97:1a:c8:ee:80:b6:9c:
fb:bc:87:30:d2:61:79:d0:e1:b6:e9:65:5f:82:54:95:cd:0e:
82:bb:bd:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:56 2024 by rpki-client on console-fra.rpki-client.org